Описание
Multiple buffer overflows in TIBCO Software Enterprise Message Service (EMS) before 4.4.3, and iProcess Engine 10.6.0 through 10.6.1, allow remote attackers to execute arbitrary code via a crafted message to the EMS server.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.4.2 (включая)
Одно из
cpe:2.3:a:tibco:enterprise_message_service:*:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.2.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.3.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.4.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:enterprise_message_service:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:tibco:iprocess_engine:10.6.0:*:*:*:*:*:*:*
cpe:2.3:a:tibco:iprocess_engine:10.6.1:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.12626
Средний
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Multiple buffer overflows in TIBCO Software Enterprise Message Service (EMS) before 4.4.3, and iProcess Engine 10.6.0 through 10.6.1, allow remote attackers to execute arbitrary code via a crafted message to the EMS server.
EPSS
Процентиль: 94%
0.12626
Средний
10 Critical
CVSS2
Дефекты
CWE-119